check blocklist for emails when adding them to account #26812

techknowlogick · 2023-08-30T05:02:23Z

No description provided.

models/user/email_address.go

@techknowlogick

Backport #26812 by @techknowlogick Co-authored-by: techknowlogick <techknowlogick@gitea.io>

* giteaoffical/main: (22 commits) Use case-insensitive regex for all webpack assets (go-gitea#26867) restrict certificate type for builtin SSH server (go-gitea#26789) feat(API): add secret deletion functionality for repository (go-gitea#26808) Avoid double-unescaping of form value (go-gitea#26853) Move web/api context related testing function into a separate package (go-gitea#26859) Remove some unused CSS styles (go-gitea#26852) [skip ci] Updated translations via Crowdin Minor dashboard tweaks, fix flex-list margins (go-gitea#26829) Update team invitation email link (go-gitea#26550) Redirect from `{repo}/issues/new` to `{repo}/issues/new/choose` when blank issues are disabled (go-gitea#26813) Remove "TODO" tasks from CSS file (go-gitea#26835) User details page (go-gitea#26713) Render code blocks in repo description (go-gitea#26830) Remove joinPaths function (go-gitea#26833) Remove polluted `.ui.right` (go-gitea#26825) Sync tags when adopting repos (go-gitea#26816) rm comment about hugo (go-gitea#26832) Fix filename for .spectral.yaml (go-gitea#26828) [skip ci] Updated translations via Crowdin Check blocklist for emails when adding them to account (go-gitea#26812) ...

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/gitea/gitea](https://github.com/go-gitea/gitea) | patch | `1.20.3` -> `1.20.4` | --- ### Release Notes <details> <summary>go-gitea/gitea (docker.io/gitea/gitea)</summary> ### [`v1.20.4`](https://github.com/go-gitea/gitea/blob/HEAD/CHANGELOG.md#1204---2023-09-08) [Compare Source](go-gitea/gitea@v1.20.3...v1.20.4) - SECURITY - Check blocklist for emails when adding them to account ([#26812](go-gitea/gitea#26812)) ([#26831](go-gitea/gitea#26831)) - ENHANCEMENTS - Add `branch_filter` to hooks API endpoints ([#26599](go-gitea/gitea#26599)) ([#26632](go-gitea/gitea#26632)) - Fix incorrect "tabindex" attributes ([#26733](go-gitea/gitea#26733)) ([#26734](go-gitea/gitea#26734)) - Use line-height: normal by default ([#26635](go-gitea/gitea#26635)) ([#26708](go-gitea/gitea#26708)) - Fix unable to display individual-level project ([#26198](go-gitea/gitea#26198)) ([#26636](go-gitea/gitea#26636)) - BUGFIXES - Fix wrong review requested number ([#26784](go-gitea/gitea#26784)) ([#26880](go-gitea/gitea#26880)) - Avoid double-unescaping of form value ([#26853](go-gitea/gitea#26853)) ([#26863](go-gitea/gitea#26863)) - Redirect from `{repo}/issues/new` to `{repo}/issues/new/choose` when blank issues are disabled ([#26813](go-gitea/gitea#26813)) ([#26847](go-gitea/gitea#26847)) - Sync tags when adopting repos ([#26816](go-gitea/gitea#26816)) ([#26834](go-gitea/gitea#26834)) - Fix verifyCommits error when push a new branch ([#26664](go-gitea/gitea#26664)) ([#26810](go-gitea/gitea#26810)) - Include the GITHUB_TOKEN/GITEA_TOKEN secret for fork pull requests ([#26759](go-gitea/gitea#26759)) ([#26806](go-gitea/gitea#26806)) - Fix some slice append usages ([#26778](go-gitea/gitea#26778)) ([#26798](go-gitea/gitea#26798)) - Add fix incorrect can_create_org_repo for org owner team ([#26683](go-gitea/gitea#26683)) ([#26791](go-gitea/gitea#26791)) - Fix bug for ctx usage ([#26763](go-gitea/gitea#26763)) - Make issue template field template access correct template data ([#26698](go-gitea/gitea#26698)) ([#26709](go-gitea/gitea#26709)) - Use correct minio error ([#26634](go-gitea/gitea#26634)) ([#26639](go-gitea/gitea#26639)) - Ignore the trailing slashes when comparing oauth2 redirect_uri ([#26597](go-gitea/gitea#26597)) ([#26618](go-gitea/gitea#26618)) - Set errwriter for urfave/cli v1 ([#26616](go-gitea/gitea#26616)) - Fix reopen logic for agit flow pull request ([#26399](go-gitea/gitea#26399)) ([#26613](go-gitea/gitea#26613)) - Fix context filter has no effect in dashboard ([#26695](go-gitea/gitea#26695)) ([#26811](go-gitea/gitea#26811)) - Fix being unable to use a repo that prohibits accepting PRs as a PR source. ([#26785](go-gitea/gitea#26785)) ([#26790](go-gitea/gitea#26790)) - Fix Page Not Found error ([#26768](go-gitea/gitea#26768)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).  Reviewed-on: https://git.home/nrdufour/home-ops/pulls/79 Co-authored-by: Renovate <renovate@ptinem.io> Co-committed-by: Renovate <renovate@ptinem.io>

check blocklist for emails when adding them to account

b2162eb

GiteaBot added the lgtm/need 2 This PR needs two approvals by maintainers to be considered for merging. label Aug 30, 2023

pull-request-size bot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Aug 30, 2023

techknowlogick added type/enhancement An improvement of existing functionality topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! backport/v1.20 This PR should be backported to Gitea 1.20 labels Aug 30, 2023

techknowlogick added 2 commits August 30, 2023 05:23

attempt validate

77148fc

only check allowlist if it contains any items

f0a8fe2

wolfogre reviewed Aug 30, 2023

View reviewed changes

models/user/email_address.go Show resolved Hide resolved

delvh approved these changes Aug 30, 2023

View reviewed changes

GiteaBot added lgtm/need 1 This PR needs approval from one additional maintainer to be merged. and removed lgtm/need 2 This PR needs two approvals by maintainers to be considered for merging. labels Aug 30, 2023

Merge branch 'main' into stop-blocklisted-emails

098e2b7

jolheiser approved these changes Aug 30, 2023

View reviewed changes

GiteaBot added lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. and removed lgtm/need 1 This PR needs approval from one additional maintainer to be merged. labels Aug 30, 2023

jolheiser merged commit 45976a1 into go-gitea:main Aug 30, 2023
24 checks passed

GiteaBot added this to the 1.21.0 milestone Aug 30, 2023

techknowlogick deleted the stop-blocklisted-emails branch August 30, 2023 15:46

GiteaBot mentioned this pull request Aug 31, 2023

check blocklist for emails when adding them to account (#26812) #26831

Merged

GiteaBot pushed a commit to GiteaBot/gitea that referenced this pull request Aug 31, 2023

Check blocklist for emails when adding them to account (go-gitea#26812)

b5a8475

GiteaBot added the backport/done All backports for this PR have been created label Aug 31, 2023

techknowlogick added a commit that referenced this pull request Aug 31, 2023

check blocklist for emails when adding them to account (#26812) (#26831)

41bae29

Backport #26812 by @techknowlogick Co-authored-by: techknowlogick <techknowlogick@gitea.io>

Zettat123 mentioned this pull request Oct 12, 2023

Admin user registration and EMAIL_DOMAIN_ALLOWLIST #27457

Closed

go-gitea locked as resolved and limited conversation to collaborators Nov 28, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

check blocklist for emails when adding them to account #26812

check blocklist for emails when adding them to account #26812

techknowlogick commented Aug 30, 2023

check blocklist for emails when adding them to account #26812

check blocklist for emails when adding them to account #26812

Conversation

techknowlogick commented Aug 30, 2023